当当云阅读 > 进口书 > 外文原版书 > 电脑/网络 > Metasploit for Beginners

| | 手机阅读

扫描下载当当云阅读App

Metasploit for Beginners电子书

售价：¥

4人正在读 | 0人评论

9.8

作者：Sagar Rahalkar

出版社：Packt Publishing

出版时间：2017-07-21

字数：12.5万

所属分类：进口书 > 外文原版书 > 电脑/网络

温馨提示：数字商品不支持退换货，不提供源文件，不支持导出打印

为你推荐

Mastering Python Regular Expressions

￥45.77

Beginning C++ Programming

￥90.46

Cybersecurity – Attack and Defense Strategies

￥73.02

Boost.Asio C++ Network Programming Cookbook

￥90.46
Mastering Python

￥71.93

Java 9: Building Robust Modular Applications

￥63.21

Hands-On Machine Learning for Cybersecurity

￥81.74

Building Minecraft Server Modifications - Second Edition

￥54.49

读书简介
目录
累计评论(0条)

读书简介
目录
累计评论(0条)

An easy to digest practical guide to Metasploit covering all aspects of the framework from installation, configuration, and vulnerability hunting to advanced client side attacks and anti-forensics. About This Book ? Carry out penetration testing in highly-secured environments with Metasploit ? Learn to bypass different defenses to gain access into different systems. ? A step-by-step guide that will quickly enhance your penetration testing skills. Who This Book Is For If you are a penetration tester, ethical hacker, or security consultant who wants to quickly learn the Metasploit framework to carry out elementary penetration testing in highly secured environments then, this book is for you. What You Will Learn ? Get to know the absolute basics of the Metasploit framework so you have a strong foundation for advanced attacks ? Integrate and use various supporting tools to make Metasploit even more powerful and precise ? Set up the Metasploit environment along with your own virtual testing lab ? Use Metasploit for information gathering and enumeration before planning the blueprint for the attack on the target system ? Get your hands dirty by firing up Metasploit in your own virtual lab and hunt down real vulnerabilities ? Discover the clever features of the Metasploit framework for launching sophisticated and deceptive client-side attacks that bypass the perimeter security ? Leverage Metasploit capabilities to perform Web application security scanning In Detail This book will begin by introducing you to Metasploit and its functionality. Next, you will learn how to set up and configure Metasploit on various platforms to create a virtual test environment. You will also get your hands on various tools and components used by Metasploit. Further on in the book, you will learn how to find weaknesses in the target system and hunt for vulnerabilities using Metasploit and its supporting tools. Next, you'll get hands-on experience carrying out client-side attacks. Moving on, you'll learn about web application security scanning and bypassing anti-virus and clearing traces on the target system post compromise. This book will also keep you updated with the latest security techniques and methods that can be directly applied to scan, test, hack, and secure networks and systems with Metasploit. By the end of this book, you'll get the hang of bypassing different defenses, after which you'll learn how hackers use the network to gain access into different systems. Style and approach This tutorial is packed with step-by-step instructions that are useful for those getting started with Metasploit. This is an easy-to-read guide to learning Metasploit from scratch that explains simply and clearly all you need to know to use this essential IT power tool.

目录展开

Title Page

Metasploit for Beginners

Credits

About the Author

About the Reviewer

www.PacktPub.com

Why subscribe?

Customer Feedback

Preface

What this book covers

What you need for this book

Who this book is for

Conventions

Reader feedback

Customer support

Errata

Piracy

Questions

Introduction to Metasploit and Supporting Tools

The importance of penetration testing

Vulnerability assessment versus penetration testing

The need for a penetration testing framework

Introduction to Metasploit

When to use Metasploit?

Making Metasploit effective and powerful using supplementary tools

Nessus

NMAP

w3af

Armitage

Summary

Exercises

Setting up Your Environment

Using the Kali Linux virtual machine - the easiest way

Installing Metasploit on Windows

Installing Metasploit on Linux

Setting up exploitable targets in a virtual environment

Summary

Exercises

Metasploit Components and Environment Configuration

Anatomy and structure of Metasploit

Metasploit components

Auxiliaries

Exploits

Encoders

Payloads

Post

Playing around with msfconsole

Variables in Metasploit

Updating the Metasploit Framework

Summary

Exercises

Information Gathering with Metasploit

Information gathering and enumeration

Transmission Control Protocol

User Datagram Protocol

File Transfer Protocol

Server Message Block

Hypertext Transfer Protocol

Simple Mail Transfer Protocol

Secure Shell

Domain Name System

Remote Desktop Protocol

Password sniffing

Advanced search with shodan

Summary

Exercises

Vulnerability Hunting with Metasploit

Managing the database

Work spaces

Importing scans

Backing up the database

NMAP

NMAP scanning approach

Nessus

Scanning using Nessus from msfconsole

Vulnerability detection with Metasploit auxiliaries

Auto exploitation with db_autopwn

Post exploitation

What is meterpreter?

Searching for content

Screen capture

Keystroke logging

Dumping the hashes and cracking with JTR

Shell command

Privilege escalation

Summary

Exercises

Client-side Attacks with Metasploit

Need of client-side attacks

What are client-side attacks?

What is a Shellcode?

What is a reverse shell?

What is a bind shell?

What is an encoder?

The msfvenom utility

Generating a payload with msfvenom

Social Engineering with Metasploit

Generating malicious PDF

Creating infectious media drives

Browser Autopwn

Summary

Exercises

Web Application Scanning with Metasploit

Setting up a vulnerable application

Web application scanning using WMAP

Metasploit Auxiliaries for Web Application enumeration and scanning

Summary

Exercises

Antivirus Evasion and Anti-Forensics

Using encoders to avoid AV detection

Using packagers and encrypters

What is a sandbox?

Anti-forensics

Timestomp

clearev

Summary

Exercises

Cyber Attack Management with Armitage

What is Armitage?

Starting the Armitage console

Scanning and enumeration

Find and launch attacks

Summary

Exercises

Extending Metasploit and Exploit Development

Exploit development concepts

What is a buffer overflow?

What are fuzzers?

Exploit templates and mixins

What are Metasploit mixins?

Adding external exploits to Metasploit

Summary

Exercises

累计评论(0条) 0个书友正在讨论这本书 发表评论

发表评论

发表评论，分享你的想法吧！

发表评论

买过这本书的人还买过

读了这本书的人还在读

支持设备

Mastering Python Regular Expressions ￥45.77

Félix López

￥45.77

Boost.Asio C++ Network Programming Cookbook ￥90.46

Dmytro Radchuk

￥90.46

Mastering Python ￥71.93

Rick van Hattem

￥71.93

Cybersecurity – Attack and Defense Strategies ￥73.02

Yuri Diogenes,Erdal Ozkaya

￥73.02

Beginning C++ Programming ￥90.46

Richard Grimes

￥90.46

GitHub Essentials ￥54.49

Achilleas Pipinellis

￥54.49

Java 9: Building Robust Modular Applications ￥63.21

Dr. Edward Lavieri,Peter Verhas,Jason Lee

￥63.21

Spring 5 Design Patterns ￥80.65

Dinesh Rajput

￥80.65

Hands-On Machine Learning for Cybersecurity ￥81.74

Soma Halder

￥81.74

Building Minecraft Server Modifications - Second Edition ￥54.49

Cody M. Sommer

￥54.49

更多同类图书 >